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In the Specification: 

Please amend the specification as follows: 
[0002] The complexity of system designs is increasing exponentially. This is 

particularly a concern for integrated circuit manufacturers such as Texas Instruments feer 
Incorporated . The time to market is more and more critical for success. It is believed that 
collaboration with customers and suppliers is the key to faster, easier, cheaper and more 
accurate interactions. 

[0004] It is therefore an object of the present invention for manufacturer's such 

as Texas Instruments feer Incorporated t o give access to partners such as sub-contractors, 
customers and Electronic Design Automation (EDA) vendors to the manufacturer's 
design systems computing environment without compromising Intellectual Property. 
[0005] In accordance with one embodiment of the present invention access from 

partner's sub-contractors, customers and Electronic Design Automation (EDA) vendors 
to a manufacturer's (owner's) such as Texas instruments feer Incorporated d esign 
systems computing environment without compromising fetellectual Property is provided 
by a full suite of w e b bas e d s e rvic e s Design Automation applications fi -om design to 
production is provided by a highly secure network including a VPN tunnel between 
workstations to establish a secure encrypted tunnel end to end wherein each partner is 
identified with a different VPN group/password. 

[00 1 3] According to one embodiment of the present invention access firom sub- 

contractors, customers and Electronic Design Automation (EDA) vendors to the 
manufacturer's such as Texas Instruments Incorporated computmg environment without 
compromising Intellectual Property is provided by a full suite of w e b bas e d service s 
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Design automation applications fr om design to production. This interactive design 
compute environment in which cxistomers can work jointly with the technical people and 
other representatives of Texas Instruments Inc. to create and test designs in a highly 
secure "Design Zones" promote collaboration between Texas Instruments fae? 
Incorporated (the manufacturer and owner of the computing environment) and its 
customers and offer flexibility in the compute and design process. Because the zones are 
so secure, they help give customers the confidence they need to share design intellectual 
property with Texas Instruments fee r Incorporated r epresentatives and subcontractors for 
the purpose of completing a project and increasing the value of a joint design. 
[0014] Design zones allow designers with access to the zones to compute as they 

would from a common UNIX desktop. They login to a highly secure Texas Instruments 
faer Incorporated network through the Internet, direct leased lines and/or the Texas 
Instruments faer Incorporated Intranet. They must pass through multiple layers of 
security. Once they reach the "engagement zones" Texas Instruments engineers and 
other representatives and their business partners can work simultaneously in multiple 
teams, run simulation tests, emulate software problems and share intellectual property in 
a secure zone. 

[0015] Figure 1 illustrates Customers, Sub-contractors, and EDA Vendors 

(partners) accessing the Internet and through the VPN and TI external firewall 1 1 to the 
authentication 13. The access after authentication the communication then passes on to 
the appropriate isolated engagement boxes 15 and to the computer farm versioning 
storage 1 7. All machines in the system cannot access Texas Instruments Ine? 
Incorporated Intranet. They are blocked by the TI internal firewall 19 with the exception 
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of the Network Time Protocol, license machines for EDA ^plications and a few Mail 
fimctionalities (SMPT port 25). Data produced in the system is replicated internally 
through the backend network or through the outside perimeter on a regular basis, and this 
is always initiated from inside, namely from the Intranet. 
[001 6] A Texas Instruments faer Incorporated D esign Zone security 

administrator monitors the activities to make sure no information leaves the site. Design 
engineers are restricted from removing any intellectual property from the engagement 
zone and a security administmtor controls all movements of data. For added protection, a 
"co-session" management tool allows the designated zone lead engineer to monitor what 
the parties are doing in the zone. 

[001 8] Partners start a session in a Worldwide Web (Web) page using thin client 

technology such as Citrix Independent Computing Architecture (ICA). This session is 
launched on a Portal machine that will authenticate through Lightweight Directory 
Access Protocol (LDAP) the us e r/password of th e p e rson user identification and 
password of the user ( Step 3), The LDAP allows the directory user agent to give users 
access to directory services to communicate with the directory system agent that manages 
the directory data. This is the second level of authentication. 
[0019] Depending on the person identified by the LDAP in Step 3 above, the 

session will be routed to one of many engagement boxes that are on the Ethemet 
segments separated by Firewall boxes where in Step 4 another login/password is required 
and is validated thru LDAP. LDAP boxes are on the common resource segments. All 
users of the same partner are all launching on the same engagement box, which guarantee 
a high level of security. An engagement box includes a server with an operating svstem 
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like UNIX. F rom that engagement box they have access to data and applications on the 
Network File System (NFS) storage system (Step 7) and access is also controlled by the 
LDAP mechanism for security purposes. NFS is a distributed file system fi-om SunSoft 
that allows data to be shared across a network regardless of machine, operating system, 
network architecture or protocol. This de facto UNIX standard lets remote files appear as 
if they were local on a user's machine. The partners can run local applications on the 
engagement box (Step 5) such as design applications, mail, editor, etc or on the server 
farm ( Step 6) that resides on the common resources segment for bigger batch or 
interactive jobs. Doing that, data input and output remains on the common resource, just 
the remote display is going back to the engagement box (XI 1 protocol) and ther e for e to a 
remote client device, via an ICA session, t o the partner outside the owner (ICA) such as 
Texas Instruments Ib&z Incorporated . All critical data remains in the Texas instruments 
Ine? Incorporated p remises design zone. All.machines in the design zone cannot access 
the TI Intranet because they are blocked by the firewall 19 with the exception of the 
Network Time Protocol, license machines for EDA applications and a few mail 
functionalities (SMTP port 25). Data produced in the system is replicated internally 
through the backend network or through the outside perimeter on a regular basis, and this 
is always initiated firom inside, namely fi-om the TI Intranet via the TI internal firewall. 
As discussed previously a Design Zone security administrator monitors the activities to 
make sure no information leaves the site and design engineers are restricted firom 
removing any intellectual property fi"om the engagement zone and the security 
administrator controls all movements of data. For added protection, a "co-session" 
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management tool allows the designated zone lead engineer to monitor what the parties 
are doing in the zone. 

[0021] Figures 4 A and 4B is a schematic diagram of the system and illustrates 

which protocol is allowed jfrom where to where to guarantee security. The partners may 
access through the outside/business perimeter using the Internet as illustrated at the top of 
the drawing. A licensee may access the system trough through an Intranet link. The 
access is through routers and teu through s ecure mechanism such as SSH. SSH utilizes 
strong encryption and authentication. SSH can be installed on a private network's 
firewall, and a tunnel can be established from SSH client with dialup Intemet access to 
the firewall. The input from the Intemet is through VPN concentrator using a VPN 
tunnel. The Partners start an ICA session in a WEB page. This session is launched on a 
Portal machine that will authenticate through Lightweight Directory Access Protocol 
(LDAP) the us e r/password of th e p e rson, user identification and password of the user . 
Depending on the person that will authenticate through Lightweight Directory Access 
Protocol (LDAP) the user/password of the person, then another login/password is 
required and is validated thru LDAP. All users of the same partner are all launching on 
the same engagement box, which guarantee a high level of security. This is the second 
LDAP and third level of security. From that box they have access to data and 
applications on the Network File System (NFS) storage thru a LDAP mechanism for 
security purposes. There are illustrated engagement boxes 1 thru 21. The common 
resource segment includes the server farm, the storage NFS, DNS mail, the LDAP master 
and secondary LDAP. The backend Network segment includes the TI or owner's 
Intranet. This backend segment is mostly used for backup purposes of data in common 
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resources as well as for data replication between Intranet and Common resource area. 
The async access box is used for management of all the critical boxes in the Design Zone 
from the Intranet thru a Terminal server box to guarantee security, 
[0022] Texas Instruments fee? Incorporated provides a full suite of web-based 

services to customers who do not have the system capability to connect directly to Texas 
Instruments Ine? Incorporated networks. Figure S illustrates the collaborative w e b bas e d 
Design Automation a pplication services from design to production. At the discovery 
stage there are presented application solutions. At the evaluation stage there is product 
information, parametric search, demos, free evaluation tools, free samples and tools 
eStore. At the design/test stage there is training/Webcasts, third party network, update 
advisor, technical support, knowledge base and discussion groups. At the production 
stage there is availability information and lead time information. 
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